Home » Mailing list archives » openbsd-misc » 2007 » October » 8

Re: [newbie] ssh and sftp timing out

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: steve szmidt
Subject: Re: [newbie] ssh and sftp timing out
Date: Monday, October 8, 2007 - 7:39 pm

On Monday 08 October 2007 21:57, Tony Bruguier wrote:

If you configured the firewall it probably is not configured to allow access 
from an external IP. If someone is at your house you can have them attempt to 
reach your bsd box, and if you have executed 
	tcpdump -nei pflog0

then it will show your home IP as a deny (provided the blocks have the log 
parameter.) 

Provided pf is running, there needs to be a PASS rule. Something like:

WAN=xl0
Home=nn.nnn.nn.nnn

pass in log on $WAN proto tcp from $Home to $WAN port 22 

That would allow you and only you in. Of course if you have a dynamic IP then 
it will change. If that's the case you can use dyndns.net or .com(?) to 
always track which IP you have at home.

-- 

Steve Szmidt

"They that would give up essential liberty for temporary safety 
deserve neither liberty nor safety."
                                Benjamin Franklin
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
[newbie] ssh and sftp timing out, Tony Bruguier, (Mon Oct 8, 6:57 pm)
Re: [newbie] ssh and sftp timing out, Tony Bruguier, (Mon Oct 8, 7:29 pm)
Re: [newbie] ssh and sftp timing out, steve szmidt, (Mon Oct 8, 7:39 pm)
Re: [newbie] ssh and sftp timing out, Joachim Schipper, (Tue Oct 9, 10:05 am)
Re: [newbie] ssh and sftp timing out, Tony Bruguier, (Tue Oct 9, 12:28 pm)